Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:CISCO:SCMM-TEST-INTERFACE |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
ScMM Test Interface In Cisco Small Business Devices |
Release Date |
2018/06/04 |
Update Number |
3070 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: ScMM Test Interface In Cisco Small Business Devices
This signature detects attempts to exploit a known vulnerability against Cisco Small Business Devices. A successful exploit can lead to remote code execution.
Extended Description
The Cisco WAP4410N access point with firmware through 2.0.6.1, WRVS4400N router with firmware 1.x through 1.1.13 and 2.x through 2.0.2.1, and RVS4000 router with firmware through 2.0.3.2 allow remote attackers to read credential and configuration data, and execute arbitrary commands, via requests to the test interface on TCP port 32764, aka Bug IDs CSCum37566, CSCum43693, CSCum43700, and CSCum43685.
Affected Products
- Cisco rvs4000 -
- Cisco rvs4000_firmware 1.3.2.0
- Cisco rvs4000_firmware 1.3.3.5
- Cisco rvs4000_firmware 2.0.0.3
- Cisco rvs4000_firmware 2.0.2.7
- Cisco rvs4000_firmware 2.0.3.2
- Cisco wap4410n -
- Cisco wap4410n_firmware 2.0.2.1
- Cisco wap4410n_firmware 2.0.3.3
- Cisco wap4410n_firmware 2.0.4.2
- Cisco wap4410n_firmware 2.0.6.1
- Cisco wrvs4400n -
- Cisco wrvs4400n_firmware 1.1.03
- Cisco wrvs4400n_firmware 1.1.13
- Cisco wrvs4400n_firmware 2.0.1.3
- Cisco wrvs4400n_firmware 2.0.2.1
References
- BugTraq: 64776
- CVE: CVE-2014-0659